$ rpki-client -vvf rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa File: CC2A0136F58C11EEB142585CC4F9AE02.roa (raw, json) Hash identifier: qmiQQhJumSCOTqN0UAWHayq21svmJxORov2Aa4yLRQg= Subject key identifier: 46:C5:E8:6A:5D:FB:C4:45:00:08:45:05:29:9D:0B:9D:33:F3:C8:3B Certificate issuer: /CN=A91C7B15/serialNumber=AFB08D6F7E97785B6F31171EF82E31BB1D06E2E3 Certificate serial: 140A Authority key identifier: AF:B0:8D:6F:7E:97:78:5B:6F:31:17:1E:F8:2E:31:BB:1D:06:E2:E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa Signing time: Fri 08 Nov 2024 02:10:11 +0000 ROA not before: Fri 08 Nov 2024 02:10:11 +0000 ROA not after: Wed 28 May 2025 00:00:00 +0000 asID: 37988 IP address blocks: 2402:7340:2::/48 maxlen: 48 2402:7340:5::/48 maxlen: 48 2402:7340:4000::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.crl rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 27 Nov 2024 16:54:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5130 (0x140a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C7B15/serialNumber=AFB08D6F7E97785B6F31171EF82E31BB1D06E2E3 Validity Not Before: Nov 8 02:10:11 2024 GMT Not After : May 28 00:00:00 2025 GMT Subject: CN=672d7302-cd1f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:8c:9a:2e:60:56:b5:b4:e8:6a:52:15:57:1b: 59:40:97:36:32:88:38:4f:f7:e2:37:71:92:3e:df: d2:6b:c4:ff:ab:e2:1c:4b:fc:64:4b:5f:1c:9b:d6: 1c:6d:7f:1a:60:6a:87:72:a5:9d:d8:b0:c9:4e:77: ce:70:bb:13:ad:5c:6d:e2:6b:ea:6e:b2:f0:98:8a: ef:8f:08:a6:fa:cc:4c:19:36:f8:2e:0f:14:10:6d: ae:79:87:c8:a9:9f:0a:bf:a3:ef:b3:ca:68:d5:a3: c6:73:95:e8:89:57:5e:8e:3b:cd:45:a5:ed:45:b8: ea:db:ad:ad:e9:d3:82:a7:58:45:79:9a:dc:9d:ee: d5:c5:c7:d2:75:88:bf:56:d9:1a:21:83:23:99:ac: 63:c8:6c:39:a0:0b:e7:5c:2e:9e:c4:6f:77:aa:34: 52:5e:24:2e:87:13:d7:5f:0e:c9:7b:b0:e2:e6:c8: 96:02:66:2d:ac:83:bb:33:3b:62:68:d4:47:37:07: b1:04:bf:f8:79:15:ec:ad:c8:69:1c:14:39:64:01: 0f:47:39:ed:da:28:c4:fd:6f:eb:e2:ac:90:df:e9: 77:63:a6:dc:a6:0b:e8:9f:ab:c4:9b:58:a6:cf:63: 2f:2b:99:f1:be:bc:7d:1b:6f:6a:d9:f3:f9:8f:08: e8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:C5:E8:6A:5D:FB:C4:45:00:08:45:05:29:9D:0B:9D:33:F3:C8:3B X509v3 Authority Key Identifier: keyid:AF:B0:8D:6F:7E:97:78:5B:6F:31:17:1E:F8:2E:31:BB:1D:06:E2:E3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/r7CNb36XeFtvMRce-C4xux0G4uM.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/r7CNb36XeFtvMRce-C4xux0G4uM.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C7B15/FAF6FD7871E611E8996E2E64C4F9AE02/CC2A0136F58C11EEB142585CC4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv6: 2402:7340:2::/48 2402:7340:5::/48 2402:7340:4000::/34 Signature Algorithm: sha256WithRSAEncryption 15:81:1d:1e:58:19:67:81:b1:11:0f:fc:a3:a0:3d:d4:f5:f8: 5e:b4:40:f8:89:fa:5b:d5:73:4f:34:fa:75:de:cf:07:78:72: 0c:62:ae:3b:2c:ee:29:89:77:89:9e:bb:75:71:fe:6c:cd:73: 97:94:fc:9e:69:9f:31:52:3c:42:3e:29:d3:f4:e0:44:09:f0: bd:54:53:ff:ed:27:c4:8e:7a:ce:36:f6:fa:05:59:95:0a:54: 3e:91:95:2a:15:f7:67:11:26:bc:e6:9b:d1:5f:05:0c:c9:fd: c8:87:5b:91:74:ad:f2:58:f6:b2:bd:31:ae:64:40:03:d4:8a: b9:52:2a:be:38:ff:dd:47:56:15:68:c2:7f:23:00:90:53:a4: 98:b8:fb:29:fc:f1:6d:ed:3f:87:7c:ce:5c:98:f6:3d:35:3c: 40:d6:d7:06:c1:94:41:93:4f:37:c9:14:69:af:d4:db:9b:10: b9:5c:0b:1c:fb:f2:28:25:cc:0e:f2:02:e4:b8:53:b4:a7:7c: ca:38:9b:30:7c:af:4f:79:96:97:67:26:f0:0b:80:4c:1a:b1: 1a:40:bb:1a:b3:b7:36:e2:7e:f2:21:77:2e:76:4d:4b:06:4c: 83:87:46:bf:81:8f:b0:dd:86:aa:3c:42:3f:46:68:b3:18:d3: 75:02:ef:92 -----BEGIN CERTIFICATE----- MIIFhTCCBG2gAwIBAgICFAowDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzdCMTUxMTAvBgNVBAUTKEFGQjA4RDZGN0U5Nzc4NUI2RjMxMTcxRUY4MkUzMUJC MUQwNkUyRTMwHhcNMjQxMTA4MDIxMDExWhcNMjUwNTI4MDAwMDAwWjAYMRYwFAYD VQQDEw02NzJkNzMwMi1jZDFmMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAyYyaLmBWtbToalIVVxtZQJc2Mog4T/fiN3GSPt/Sa8T/q+IcS/xkS18cm9Yc bX8aYGqHcqWd2LDJTnfOcLsTrVxt4mvqbrLwmIrvjwim+sxMGTb4Lg8UEG2ueYfI qZ8Kv6Pvs8po1aPGc5XoiVdejjvNRaXtRbjq262t6dOCp1hFeZrcne7VxcfSdYi/ VtkaIYMjmaxjyGw5oAvnXC6exG93qjRSXiQuhxPXXw7Je7Di5siWAmYtrIO7Mzti aNRHNwexBL/4eRXsrchpHBQ5ZAEPRznt2ijE/W/r4qyQ3+l3Y6bcpgvon6vEm1im z2MvK5nxvrx9G29q2fP5jwjoqQIDAQABo4ICqTCCAqUwHQYDVR0OBBYEFEbF6Gpd +8RFAAhFBSmdC50z88g7MB8GA1UdIwQYMBaAFK+wjW9+l3hbbzEXHvguMbsdBuLj MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDN0IxNS9GQUY2RkQ3ODcx RTYxMUU4OTk2RTJFNjRDNEY5QUUwMi9yN0NOYjM2WGVGdHZNUmNlLUM0eHV4MEc0 dU0uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3I3Q05iMzZYZUZ0dk1SY2UtQzR4dXgwRzR1TS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QzdCMTUvRkFGNkZENzg3MUU2MTFFODk5NkUyRTY0QzRGOUFFMDIvQ0MyQTAxMzZG NThDMTFFRUIxNDI1ODVDQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwMwYIKwYBBQUHAQcBAf8E JDAiMCAEAgACMBoDBwAkAnNAAAIDBwAkAnNAAAUDBgYkAnNAQDANBgkqhkiG9w0B AQsFAAOCAQEAFYEdHlgZZ4GxEQ/8o6A91PX4XrRA+In6W9VzTzT6dd7PB3hyDGKu OyzuKYl3iZ67dXH+bM1zl5T8nmmfMVI8Qj4p0/TgRAnwvVRT/+0nxI56zjb2+gVZ lQpUPpGVKhX3ZxEmvOab0V8FDMn9yIdbkXSt8lj2sr0xrmRAA9SKuVIqvjj/3UdW FWjCfyMAkFOkmLj7Kfzxbe0/h3zOXJj2PTU8QNbXBsGUQZNPN8kUaa/U25sQuVwL HPvyKCXMDvIC5LhTtKd8yjibMHyvT3mWl2cm8AuATBqxGkC7GrO3NuJ+8iF3LnZN SwZMg4dGv4GPsN2GqjxCP0ZosxjTdQLvkg== -----END CERTIFICATE-----Generated at Wed Nov 20 18:45:05 2024 by rpki-client on console-fra.rpki-client.org